$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: X5Sj9wHIlEsDBPhlQCcOynM1ZFclGLlXgqeVgpWLiA0= Subject key identifier: 7E:57:A2:65:02:80:AD:8D:F0:CC:44:6C:86:15:AF:03:69:22:1B:D1 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C4A Signing time: Fri 04 Apr 2025 18:32:44 +0000 Manifest this update: Fri 04 Apr 2025 18:32:43 +0000 Manifest next update: Fri 11 Apr 2025 18:32:43 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: rsLX6EkBAVvopzjzdUuShPMhbFOvSuAHC8EmbkyPsSs=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Dq4Ro4BCHubyTM+Puy9Ox1X2qGGmM5W4/l0WmjnI3vE=) 4: 2B633118DF2F11EFAD7BEE6BC4F9AE02.roa (hash: LCBsasgUklncuTCZqxiSNtZe0VPDq700osnXP0sG1fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2 Validity Not Before: Apr 4 18:32:43 2025 GMT Not After : Apr 11 18:32:43 2025 GMT Subject: CN=67f025cb-9d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:1a:49:04:49:f4:dc:02:70:e7:ef:9d:1a: bb:0e:03:3d:c0:94:22:36:22:05:7a:5d:0d:8d:6c: 81:f3:22:59:04:d9:c5:15:0e:70:a8:4f:a0:b4:3a: 3e:58:d6:54:81:49:69:17:4a:5d:a9:b4:35:24:f9: 72:dd:20:f1:fc:be:7f:a4:a8:09:b8:f9:d6:b9:58: d4:fb:96:45:b3:4a:79:5c:48:e4:f2:35:6c:d1:17: 5f:1a:4d:99:8a:d6:e3:e8:cc:25:66:12:e3:22:d8: 4b:46:11:79:70:14:27:0f:35:ef:4d:cf:f1:e5:0e: b1:a3:fb:fb:71:76:43:49:85:9c:32:98:17:83:87: 0a:ef:97:62:c5:4f:01:9d:3c:e7:94:be:b6:68:17: 99:0b:4f:15:d6:49:9d:24:2e:51:85:ea:53:9e:db: d6:02:e7:db:65:a7:ed:fe:f7:3d:c7:42:16:56:27: 12:80:db:36:5f:2b:df:e4:35:97:2a:16:e3:05:b2: a6:c0:d9:8b:b6:9b:05:e5:d8:70:c2:c8:9d:7a:2f: f9:35:31:6c:a6:42:03:c2:21:97:b4:da:34:52:4f: f0:dd:94:bc:70:db:a1:58:d6:bb:79:e2:d5:ea:26: d4:55:1d:51:81:90:d8:f2:92:b8:55:d9:b3:86:84: 22:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:57:A2:65:02:80:AD:8D:F0:CC:44:6C:86:15:AF:03:69:22:1B:D1 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d4:54:62:ba:ac:40:fb:0c:8a:39:c1:53:97:7e:d6:48:7c: 6a:f3:c6:7e:9a:c9:97:e4:a7:5d:f2:99:e6:b5:45:79:9f:a1: b9:19:55:42:ab:39:ff:d3:d9:38:bd:95:0c:45:ba:a7:2f:c7: 01:ee:8d:a3:b8:08:45:7e:71:0d:d8:6b:d9:ff:1f:52:71:de: 24:06:3b:f0:22:04:29:16:97:c7:0a:0e:24:c9:bc:b7:fa:fc: 51:ed:2a:eb:16:e6:fc:20:a1:b5:e3:54:51:fb:e5:5d:88:b8: 50:62:29:bc:39:c2:5a:a0:bc:7d:f0:43:3d:28:64:46:01:4f: 58:c9:ef:bf:7f:29:3e:74:fa:f8:8a:98:26:89:13:6b:12:e0: 35:31:1b:71:e1:da:72:c2:c8:97:96:a1:a5:31:58:5a:b9:02: 8b:a5:5f:8b:0c:f3:d6:85:fc:e0:be:4b:0d:23:b2:61:f5:56: 53:7d:e4:f5:ed:90:3f:2e:02:a5:96:f1:af:07:b6:8f:13:23: 89:30:33:60:36:a0:27:7d:bf:2f:e2:5a:1b:78:bf:ba:51:9c: 45:4c:7a:1c:34:9d:c3:3b:de:40:3c:85:71:e2:30:8d:29:71: f5:72:8c:f0:b0:f7:10:af:d0:58:1d:70:0a:06:c4:69:85:eb: 9a:6e:56:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNDA0MTgzMjQzWhcNMjUwNDExMTgzMjQzWjAYMRYwFAYD VQQDEw02N2YwMjVjYi05ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbwaSQRJ9NwCcOfvnRq7DgM9wJQiNiIFel0NjWyB8yJZBNnFFQ5wqE+gtDo+ WNZUgUlpF0pdqbQ1JPly3SDx/L5/pKgJuPnWuVjU+5ZFs0p5XEjk8jVs0RdfGk2Z itbj6MwlZhLjIthLRhF5cBQnDzXvTc/x5Q6xo/v7cXZDSYWcMpgXg4cK75dixU8B nTznlL62aBeZC08V1kmdJC5RhepTntvWAufbZaft/vc9x0IWVicSgNs2Xyvf5DWX KhbjBbKmwNmLtpsF5dhwwsidei/5NTFspkIDwiGXtNo0Uk/w3ZS8cNuhWNa7eeLV 6ibUVR1RgZDY8pK4VdmzhoQifwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5XomUC gK2N8MxEbIYVrwNpIhvRMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV1FRiuqxA+wyKOcFTl37WSHxq88Z+msmX5Kdd8pnmtUV5n6G5GVVC qzn/09k4vZUMRbqnL8cB7o2juAhFfnEN2GvZ/x9Scd4kBjvwIgQpFpfHCg4kyby3 +vxR7SrrFub8IKG141RR++VdiLhQYim8OcJaoLx98EM9KGRGAU9Yye+/fyk+dPr4 ipgmiRNrEuA1MRtx4dpywsiXlqGlMVhauQKLpV+LDPPWhfzgvksNI7Jh9VZTfeT1 7ZA/LgKllvGvB7aPEyOJMDNgNqAnfb8v4lobeL+6UZxFTHocNJ3DO95APIVx4jCN KXH1cozwsPcQr9BYHXAKBsRpheuablZX -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:04 2025 by rpki-client